CWE-416— Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.— MITRE CWE catalog
7,398 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-416page 117 of 148
- CVE-2025-53150HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
- CVE-2025-53151HIGHCVSS 7.8EG 7.82025-08-12
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
- CVE-2025-53152HIGHCVSS 7.8EG 7.82025-08-12
Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally.
- CVE-2025-53185MEDIUMCVSS 6.6EG 6.62025-07-07
Virtual address reuse issue in the memory management module, which can be exploited by non-privileged users to access released memory Impact: Successful exploitation of this vulnerability may affect service integrity.
- CVE-2025-53718HIGHCVSS 7.0EG 7.02025-08-12
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
- CVE-2025-53721HIGHCVSS 7.0EG 7.02025-08-12
Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.
- CVE-2025-53730HIGHCVSS 7.8EG 7.82025-08-12
Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally.
- CVE-2025-53731HIGHCVSS 8.4EG 8.42025-08-12
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- CVE-2025-53734HIGHCVSS 7.8EG 7.82025-08-12
Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally.
- CVE-2025-53735HIGHCVSS 7.8EG 7.82025-08-12
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-53738HIGHCVSS 7.8EG 7.82025-08-12
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- CVE-2025-53740HIGHCVSS 8.4EG 8.42025-08-12
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- CVE-2025-53761HIGHCVSS 7.8EG 7.82025-08-12
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
- CVE-2025-53768HIGHCVSS 7.8EG 7.82025-10-14
Use after free in Xbox allows an authorized attacker to elevate privileges locally.
- CVE-2025-53784HIGHCVSS 8.4EG 8.42025-08-12
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- CVE-2025-53802HIGHCVSS 7.0EG 7.02025-09-09
Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
- CVE-2025-53807HIGHCVSS 7.0EG 7.02025-09-09
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
- CVE-2025-53814HIGHCVSS 7.8EG 7.82025-10-28
A use-after-free vulnerability exists in the XML parser functionality of GCC Productions Inc. Fade In 4.2.0. A specially crafted .xml file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this v…
- CVE-2025-54092HIGHCVSS 7.8EG 7.82025-09-09
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
- CVE-2025-54101MEDIUMCVSS 4.8EG 4.82025-09-09
Use after free in Windows SMBv3 Client allows an authorized attacker to execute code over a network.
- CVE-2025-54102HIGHCVSS 7.8EG 7.82025-09-09
Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.
- CVE-2025-54103HIGHCVSS 7.4EG 7.42025-09-09
Use after free in Windows Management Services allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-54105HIGHCVSS 7.0EG 7.02025-09-09
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- CVE-2025-54108HIGHCVSS 7.0EG 7.02025-09-09
Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally.
- CVE-2025-54111HIGHCVSS 7.8EG 7.82025-09-09
Use after free in Windows UI XAML Phone DatePickerFlyout allows an authorized attacker to elevate privileges locally.
- CVE-2025-54112HIGHCVSS 7.0EG 7.02025-09-09
Use after free in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally.
- CVE-2025-54223HIGHCVSS 7.8EG 7.82025-08-12
InCopy versions 20.4, 19.5.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim…
- CVE-2025-54224HIGHCVSS 7.8EG 7.82025-08-12
InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in tha…
- CVE-2025-54225HIGHCVSS 7.8EG 7.82025-08-12
InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in tha…
- CVE-2025-54226HIGHCVSS 7.8EG 7.82025-08-12
InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in tha…
- CVE-2025-54229HIGHCVSS 7.8EG 7.82025-08-12
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in t…
- CVE-2025-54230HIGHCVSS 7.8EG 7.82025-08-12
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in t…
- CVE-2025-54231HIGHCVSS 7.8EG 7.82025-08-12
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in t…
- CVE-2025-54232HIGHCVSS 7.8EG 7.82025-08-12
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in t…
- CVE-2025-54242HIGHCVSS 7.8EG 7.82025-09-09
Premiere Pro versions 25.3, 24.6.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a …
- CVE-2025-54257HIGHCVSS 7.8EG 7.82025-09-09
Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requir…
- CVE-2025-54258HIGHCVSS 7.8EG 7.82025-09-09
Substance3D - Modeler versions 1.22.2 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that…
- CVE-2025-54279HIGHCVSS 7.8EG 7.82025-10-15
Animate versions 23.0.13, 24.0.10 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a v…
- CVE-2025-54281HIGHCVSS 7.8EG 7.82025-10-14
Adobe Framemaker versions 2020.9, 2022.7 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in t…
- CVE-2025-54335MEDIUMCVSS 6.5EG 6.52025-11-04
An issue was discovered in the GPU driver in Samsung Mobile Processor Exynos 1480, 2400, 1580, 2500. There is a use-after-free in the Xclipse GPU Driver.
- CVE-2025-54588HIGHCVSS 7.5EG 7.52025-09-03
Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. Versions 1.34.0 through 1.34.4 and 1.35.0 contain a use-after-free (UAF) vulnerability in the DNS cache, causing abnormal proc…
- CVE-2025-54626MEDIUMCVSS 4.4EG 4.42025-08-06
Pointer dangling vulnerability in the cjwindow module. Impact: Successful exploitation of this vulnerability may affect function stability.
- CVE-2025-54635MEDIUMCVSS 5.9EG 5.92025-08-06
Vulnerability of returning released pointers in the distributed notification service. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54896HIGHCVSS 7.8EG 7.82025-09-09
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-54902HIGHCVSS 7.8EG 7.82025-09-09
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-54903HIGHCVSS 7.8EG 7.82025-09-09
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-54904HIGHCVSS 7.8EG 7.82025-09-09
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-54906HIGHCVSS 7.8EG 7.82025-09-09
Free of memory not on the heap in Microsoft Office allows an unauthorized attacker to execute code locally.
- CVE-2025-54908HIGHCVSS 7.8EG 7.82025-09-09
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
- CVE-2025-54911HIGHCVSS 7.3EG 7.32025-09-09
Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally.
Map vulnerabilities like CWE-416 to your infrastructure
EchelonGraph correlates every CVE — across CWE-416 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →